Bump sonarsource/sonarcloud-github-action from 2.3.0 to 3.0.0 (#2060)

Bumps [sonarsource/sonarcloud-github-action](https://github.com/sonarsource/sonarcloud-github-action) from 2.3.0 to 3.0.0.
- [Release notes](https://github.com/sonarsource/sonarcloud-github-action/releases)
- [Commits](https://github.com/sonarsource/sonarcloud-github-action/compare/v2.3.0...v3.0.0)

---
updated-dependencies:
- dependency-name: sonarsource/sonarcloud-github-action
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
This commit is contained in:
dependabot[bot] 2024-08-26 16:19:58 +00:00 committed by GitHub
parent 1ba5762805
commit df58e28120
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
1 changed files with 2 additions and 2 deletions

View File

@ -301,7 +301,7 @@ jobs:
uses: codecov/codecov-action@v4.5.0
- name: SonarCloud Scan
uses: sonarsource/sonarcloud-github-action@v2.3.0
uses: sonarsource/sonarcloud-github-action@v3.0.0
# thought about just skipping dependabot
# if: ${{ github.actor != 'dependabot[bot]' }}
# but figured all pull requests seems better, since none of them will have access to sonarcloud.
@ -364,7 +364,7 @@ jobs:
# if: ${{ github.event_name != 'pull_request' }}
# so just skip everything but main
if: github.ref_name == 'main'
uses: sonarsource/sonarcloud-github-action@v2.3.0
uses: sonarsource/sonarcloud-github-action@v3.0.0
with:
projectBaseDir: spiffworkflow-frontend
env: